Skip to main content
New in version 3.0.0 The fastmcp auth commands help with CIMD (Client ID Metadata Document) management — part of MCP’s OAuth authentication flow. A CIMD is a JSON document you host at an HTTPS URL to identify your client application to MCP servers.

Creating a CIMD

fastmcp auth cimd create generates a CIMD document:
The generated document includes a placeholder client_id — update it to match the URL where you’ll host the document before deploying.

Options

Example

Validating a CIMD

fastmcp auth cimd validate fetches a hosted CIMD and verifies it conforms to the spec:
The validator checks that the URL is valid (HTTPS, non-root path), the document is valid JSON, the client_id matches the URL, and no shared-secret auth methods are used. On success: